$ rpki-client -vvf rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.mft File: HsyXilPvK-iOXyatm4q4g3PRl6Y.mft (raw, json) Hash identifier: OMeO5uqoBz1TI5yC/SUnAnHKLQ1um7mSVHaYv4ztHD8= Subject key identifier: 1F:9F:88:4A:4B:31:63:3A:39:B4:38:59:D9:83:B8:DD:29:5D:4F:78 Authority key identifier: 1E:CC:97:8A:53:EF:2B:E8:8E:5F:26:AD:9B:8A:B8:83:73:D1:97:A6 Certificate issuer: /CN=A9149F3E/serialNumber=1ECC978A53EF2BE88E5F26AD9B8AB88373D197A6 Certificate serial: 33CF Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/HsyXilPvK-iOXyatm4q4g3PRl6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.mft Manifest number: 33CF Signing time: Fri 24 May 2024 14:23:30 +0000 Manifest this update: Fri 24 May 2024 14:23:30 +0000 Manifest next update: Fri 31 May 2024 14:23:30 +0000 Files and hashes: 1: HsyXilPvK-iOXyatm4q4g3PRl6Y.crl (hash: jGslMDj+frQyl0Q+o8OIvZ/QLRA+L2dL+fFfCyf/Whk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.crl rsync://rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/HsyXilPvK-iOXyatm4q4g3PRl6Y.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 May 2024 14:23:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13263 (0x33cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149F3E/serialNumber=1ECC978A53EF2BE88E5F26AD9B8AB88373D197A6 Validity Not Before: May 24 14:23:30 2024 GMT Not After : May 31 14:23:30 2024 GMT Subject: CN=6650a2e2-c45a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:90:29:7f:54:c4:5a:41:f1:84:32:a5:80:28: d9:1f:8e:ca:70:65:b0:97:30:0c:7d:2a:f2:c3:bb: a4:1c:4d:46:37:18:0a:2a:78:d0:a5:d3:a1:c2:33: 40:a4:9b:72:7a:10:00:e4:23:be:b6:f4:e2:3d:e1: 81:8f:4c:a8:58:5f:6e:9a:6f:36:05:2b:32:88:cd: 4d:03:a1:52:65:58:85:83:b4:67:01:63:a7:99:b5: dc:85:47:dd:c3:2a:3f:b3:cf:9b:4c:a8:cb:48:d8: ef:1f:fb:a6:9f:80:2c:8c:9e:d6:cf:74:4b:a3:ec: 35:78:ee:34:3e:51:9f:6e:52:05:ae:44:ac:96:d6: 1e:36:22:62:65:c0:7d:06:92:6c:bb:81:3b:fb:af: e8:2f:2f:92:59:89:3a:04:34:e7:8c:05:2e:bf:fd: 7e:73:f1:16:70:95:1a:76:a0:3b:28:78:9b:26:12: 75:79:45:8d:08:8f:95:0a:16:ba:52:6d:d2:36:b0: 57:ab:31:58:98:57:91:09:0e:aa:e1:0e:4a:64:1c: df:ff:1a:ac:bd:fe:40:9c:15:4f:dc:7b:57:67:ce: 20:0a:e1:c1:5b:ad:ff:4b:06:b5:97:29:0b:12:55: cb:47:a0:af:81:27:ae:5b:d9:c4:ae:3c:43:33:17: 44:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:9F:88:4A:4B:31:63:3A:39:B4:38:59:D9:83:B8:DD:29:5D:4F:78 X509v3 Authority Key Identifier: keyid:1E:CC:97:8A:53:EF:2B:E8:8E:5F:26:AD:9B:8A:B8:83:73:D1:97:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/HsyXilPvK-iOXyatm4q4g3PRl6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c6:77:ef:9b:d4:85:2f:44:b5:13:79:37:a8:34:3f:19:e5:41: a0:49:a1:7f:5d:32:ac:f6:cd:bd:8f:3a:a4:ba:b0:2d:ff:ec: 4c:be:9c:e8:ea:4a:af:11:e6:40:2d:04:e3:a5:87:6b:b9:4b: 51:30:ae:1d:9c:3e:69:85:0f:3b:59:be:cc:87:6f:f9:38:90: 1c:16:b6:1e:eb:ff:eb:8c:56:d7:e4:48:15:90:09:22:9a:0f: 4e:0d:ed:1d:57:fc:88:44:e2:b4:14:32:02:eb:2e:a4:a3:79: a3:58:d7:86:d5:18:aa:00:9c:50:5f:7b:92:4b:67:76:a1:22: 2b:22:6d:45:4b:48:76:d8:2f:0a:bd:34:05:ca:7f:22:55:b4: 2d:9f:3f:8a:1a:66:d7:f9:d5:24:1f:af:81:3b:8a:f0:80:c0: 00:47:d6:d9:92:73:cf:80:4d:e1:a2:70:46:c3:e0:fe:65:73: 8d:be:f5:dd:88:11:ba:e9:80:19:76:8c:12:75:88:69:2f:79: a5:47:5f:46:26:bf:64:e9:af:a7:a7:7d:f0:70:1e:c4:50:16: 65:11:bc:c9:a1:57:23:17:67:22:69:79:ae:e4:5e:ea:3c:4a: e6:71:ef:ea:27:74:04:17:80:50:f8:e2:38:d1:9e:1c:e2:83: cd:9e:1d:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM88wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlGM0UxMTAvBgNVBAUTKDFFQ0M5NzhBNTNFRjJCRTg4RTVGMjZBRDlCOEFCODgz NzNEMTk3QTYwHhcNMjQwNTI0MTQyMzMwWhcNMjQwNTMxMTQyMzMwWjAYMRYwFAYD VQQDEw02NjUwYTJlMi1jNDVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmZApf1TEWkHxhDKlgCjZH47KcGWwlzAMfSryw7ukHE1GNxgKKnjQpdOhwjNA pJtyehAA5CO+tvTiPeGBj0yoWF9umm82BSsyiM1NA6FSZViFg7RnAWOnmbXchUfd wyo/s8+bTKjLSNjvH/umn4AsjJ7Wz3RLo+w1eO40PlGfblIFrkSsltYeNiJiZcB9 BpJsu4E7+6/oLy+SWYk6BDTnjAUuv/1+c/EWcJUadqA7KHibJhJ1eUWNCI+VCha6 Um3SNrBXqzFYmFeRCQ6q4Q5KZBzf/xqsvf5AnBVP3HtXZ84gCuHBW63/Swa1lykL ElXLR6CvgSeuW9nErjxDMxdE8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB+fiEpL MWM6ObQ4WdmDuN0pXU94MB8GA1UdIwQYMBaAFB7Ml4pT7yvojl8mrZuKuINz0Zem MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUYzRS9CRkVCMDAwODFE ODIxMUUyQkM2NDE3RDcwOEIwMkNEMi9Ic3lYaWxQdkstaU9YeWF0bTRxNGczUFJs NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0hzeVhpbFB2Sy1pT1h5YXRtNHE0ZzNQUmw2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OUYzRS9CRkVCMDAwODFEODIxMUUyQkM2NDE3RDcwOEIwMkNEMi9Ic3lYaWxQdkst aU9YeWF0bTRxNGczUFJsNlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDGd++b1IUvRLUTeTeoND8Z5UGgSaF/XTKs9s29jzqkurAt/+xMvpzo 6kqvEeZALQTjpYdruUtRMK4dnD5phQ87Wb7Mh2/5OJAcFrYe6//rjFbX5EgVkAki mg9ODe0dV/yIROK0FDIC6y6ko3mjWNeG1RiqAJxQX3uSS2d2oSIrIm1FS0h22C8K vTQFyn8iVbQtnz+KGmbX+dUkH6+BO4rwgMAAR9bZknPPgE3honBGw+D+ZXONvvXd iBG66YAZdowSdYhpL3mlR19GJr9k6a+np33wcB7EUBZlEbzJoVcjF2ciaXmu5F7q PErmce/qJ3QEF4BQ+OI40Z4c4oPNnh24 -----END CERTIFICATE-----Generated at Fri May 24 18:22:54 2024 by rpki-client on console-ams.rpki-client.org